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(57) Abstract 

A cryptogra^jhic method and system based on chaos theory is 
provided. Unique random 64-bit binary strings generated from an 
iterative chaotic equation are used as logic and arithmetic operands 
during encryption/decryption. The random 64-bit binary strings are 
generated based on 4 initializer values that produce thousands of 
iterated values from the chaotic equation zi+i « zt^ + c, where 
z and c are complex numbers. Hie 64-bit random numbers are 
translated into two 32r-bit keys so that each 32 bits of message 
are encrypted/decrypted, using a bitwise logic operator such as an 
exclusive-or, with a unique 32-bit key for the length of the message 
file. For additional security, a combination of logic and arithmetic 
operators are used on the 32-bit keys and the 32-bit blocks of message 
text to produce 32N-bit blocks of ciphertext, where N - 2r and r ^ 
2. For any set of 4 initializer values, the lifetime, n, is the number of 
iterations of the equation Zt+i « Zi^ + c before divergence of the output 
to infinity, and the number of unique 32-bit keys is 4n, where n can 
be over 300,000 for a multitude of initializer values. 
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32N + D BIT KEY ENCRYPTION- DECRYPTION SYSTEM USING CHAOS 
This is a continuation-in-part of Application No. 
08/521,522, filed August 30, 1995. 

BACKGROUND OF THE INVENTION 
1. Field of the Invention 

This invention relates to cryptography, and more 
particularly an encrypt ion -decrypt ion system and method using a 
32N bit key generated from random numbers based on chaotic 
dynamics . 

2^ Description of Related Art 

As the world becomes increasingly dependent on computers 
and data transmission, vast amounts of communicated data need to 
be secure from unauthorized access . Cryptography concerns the 
secure transmission of information by transformation of the 
intended message into a form only understood by the intended 
recipient . 

Plaintext messages (M) are transformed into cryptograms or 
ciphertext (C) by utilization of a cryptographic algorithm, 
i.e., a set of rules or steps encompassing enciphering (T) and 
deciphering (D) , and a set of ciryptographic keys (K) . 

The encrypted ciphertext can be represented as; 

C = T(M,Ke) . 

The recipient of the ciphertext can recover the plaintext 
messages by employing: 

D(T{M,Ke) ,Ka) = D(C,Kd) = M. 
The deciphering algorithm is usually the same algorithm as 
the enciphering algorithm, but it may be performed in the 
reverse order, and can be designated as D = T"^. 

In asymmetric, or public-key, cryptography, one of the 
keys, usually the encryption key Kg, is made public and the 
other key, usually K^, is kept private. In symmetric 
cryptography, = Kd = encrypt ion- decrypt ion become: 

t C = T{M,K) , and 

T-^(C,K) = M. 
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Cryptographic security depends on keeping the key, which 
both the sender and recipient must have, as secret. In 
addition, the key should not be capable of being deduced by 
cryptanalysis . Techniques to prevent cryptanalysis include 
iterated cryptosystems, such as the Data Encryption Standard 
(DES) developed by IBM and accepted by the National Bureau of 
Standards in 1977, and the so called "one time pad" 
cryptosystem. (Systems for secure public-key cryptosystems 
include the Rivest, Shamir, Adleman (RSA) system) . 

The one time pad is the only truly unbreakable 
cryptosystem. The one time pad utilizes a randomly selected key 
equal or greater in length to the plaintext to be enciphered, 
and the key is used only once. For example, the bit stream of 
the plaintext message M is combined with the unique and random 
key K by using a suitable algorithm T, such as an exclusive-or 
function (XOR = ©) ; or 

C = T(M,K) = M © K; and, to decipher: 
M = C e K. 

Because K is random and used only once, the probability of 
decrypting C without knowledge of K, is essentially zero. 

The problem with such a system is the intended recipient of 
the transmitted ciphertext must receive a secure key of equal 
length to the plaintext, and receive a new key for each message. 
A one time pad system may be acceptable for the transmission of 
top secret government messages, but not for large quantities of 
data. 

Fortunately, construction of an unbreakable code is 
unnecessary to achieve effective data security. What is 
necessary, is the work involved to break the code be so great 
that the time, effort, and money expended is greater than the 
possible reward for success. 

To achieve an acceptable level of security, while 
* simultaneously reducing the nightmare of distributing the key to 
the intended recipient, a method of generating a truly random 
sequence based on a small set of initial conditions is needed. 
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Random number generators today produce pseudo random 
sequences which are useful for cryptography only if they are 
sufficiently random and they are secure. To be secure^ an 
attacker should not be able to determine future values of the 
5 sequence based on past values, nor be able to determine the 
initial values based on the corresponding sequences produced. 
To be random, the sequences. should be noise- like and aperiodic 
or nonrepeating. 

To arrive at secure random generation, attempts have been 

10 made to utilize algorithms from the branch of mathematics known 
as chaos. Using chaotic dynamics, periodic sequences can be 
utilized that have such long cycle times that they appear 
aperiodic in a region of interest. In other words, when 
operating in a chaotic region, a periodic sequence can be 

15 produced with cycle length approaching infinity. This is 
important to prevent an attack based on information contained in 
the periodicity. Likewise, initial values used to produce 
unique chaotic sequences should not be determinable from the 
sequences themselves . 

20 A cryptographic technique based on chaos theory is 

presented in U.S. Patent No. 5,048,086 to Bianco et al . 
(Bianco) , the disclosure of which is incorporated herein by 
reference. Bianco used the logistic difference equation: x„^i 
= /ix„(l-x„) , to produce random sequences that appear aperiodic. 

25 The logistic difference equation is a nonlinear function that is 
chaotic for certain values of fx, which is a constant between 0.0 
and 4.0, and was selected to be between 3.57 and 4.0. The 
unique sequences produced by selection of an initial x„, 
selected between 0.0 and 1.0, are very sensitive to small 

30 changes in the initial value of x„- In other words, there is 
very little correlation between a small change in initial 
conditions and the output produced by that initial condition. 
(Bianco at col. 3, lines 24-54). 

Bianco filtered the real number output of the logistic 

35 function, which is between 0.0 and 1.0, by limiting it between 
a preselected upper and lower limit, and converting the result 
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to binary I's and O's, Numbers falling between the lower limit 
and a preselected midrange became O's, and numbers between the 
upper limit and the midrange became I's. (Bianco at col. 4, 
lines 20-48) - The binary sequence was then added modulQ~2 to 
the plaintext message, bit by bit, to arrive at the ciphertext . 
(Bianco at col. 5, lines 12-22). Modulo-2 addition is 
equivalent to the exclusive -or (XOR) function mentioned above, 
and; C = M © K, where K= the binary sequence (b^, bj, ba, . . . , b^) 
created from the logistic function above. 

The key used by Bianco to generate the binary sequence is 
the parameter fi, the upper limit, the lower limit, and an 
initialization count that determines the number of iterations 
the program will make before picking an initial starting point. 
(Bianco at col. 5, lines 5-7). According to Bianco, the actual 
values of the binary bit stream (x„'s) are not obtainable from 
the filtered data, therefore, it would be computationally 
infeasible to recover the message or key from the ciphertext. 
(Bianco at col. 4, lines 33-48). 

If one could obtain the binary sequence, only a bitwise 
manipulation (XOR) of the data and ciphertext would be required 
to arrive at the message: M = C e (b^, ba/ bj,..., b„) . 

Another cryptographic algorithm based on chaos theory is 
presented in U.S. Patent No. 5,479,513 to Protopopescu et al. 
(Proto) , the disclosure of which is incorporated herein by 
reference . 

Proto utilized two chaotic functions: the same logistic 
difference function as utilized by Bianco: x„-,i = Xx„{l-x„), 
where X s /x; and the Bernoulli shift: x„^a = 2x„ mod 1. These 
two functions are initialized using a key consisting of two 64 
bit floating point "seeds" (K^ and K2) , a 64 bit floating point 
X in the range of (3.99, 4), and an 8 bit integer (1) (small L) 
representing the number of iterations between subsequent values 
i in the pseudo random sequence. (Proto at col. 5, lines 35-62) . 

The initial seed values Ki and K2, and X are plugged into 
the chaotic functions above and the functions are iterated 1 
time to produce the first iterate values Cj^^MKi) and Cj^^MKz) . 
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The first iterates are XORed together to produce a first value 
Ri. Ri is a 64 bit XORed product and the byte (8 bits) 
consisting of bits 48-55 are extracted forming a pseudo random 
integer value p^. (Proto at cols. 5, lines 63-67; col. 6, lines 
5 1-9) . 

The chaotic functions are then iterated again producing 
second iterate values which are XORed together to form second 
value R2. Bits 48-55 are extracted from Rj to form P2 . This 
process continues until pseudo random integer sequence Pi, 

10 P2/ • • • # Pn is formed. (Proto at col. 6, lines 10-29). 

The pseudo random integer sequence is then XORed with the 
plaintext message to generate the ciphertext . The plaintext 
message is first separated into 8 bit component characters m„, 
such as ASCII representation, to be XORed with the 8 bit pseudo 

15 random integers P^. The ciphertext components c^ = m^ ® p^. To 
decipher, = c„ ® p„. (Proto at col. 5, lines 20-28; col. 6, 
lines 30-40) . 

Iiike Bianco, anyone able to reach the pseudo random integer 
sequence can perform a bitwise manipulation (XOR) to arrive at 
20 the plaintext message. 

SUMMARY OF THE INVENTION 

The present invention is a cryptographic system utilizing 
a key based on chaotic dynamics. The chaotic dynamic behavior 
utilized in the present invention is based on the equation 
25 studied by mathematician Benoit Mandelbrot: 
(1) Zt^i = Zt^ + c, 

where z and c are elements of the set of complex numbers: 

(z,c) c C, such that Zo = a + b(-l)^ and c=q+p(-l)^ for 
-1 s (a,b,q,p) s 1. 
30 Using a cartesian grid, where the y-axis forms the 

imaginary axis and the x-axis forms the real axis, Mandelbrot 
plotted the points, c, for Zo=0 that did not diverge to infinity 
kfter several iterations, i.e., the Mandelbrot Set. For non- 
zero values of c, or for certain non-zero values of constants, 
35 p and q, in the equation; c = q + pi, where i is the square root 
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of -1, there exist points, = a + bi, that diverge to infinity 
only after a large, finite number of iterations of equation (1) . 

True chaotic systems are nonrepeating- Examples of this 
occur in natural chaotic systems such as fingerprints, 
snowf lakes, leaves of a tree, etc.. Unless an iterative 
mathematical system eventually diverges to infinity, and the 
number of iterations that are necessary to achieve divergence is 
observed, we are bound to conclude that the system is not truly 
chaotic, but that it is yielding to a repeating series of 
values, though the series may be too numerous to measure. The 
only way to be certain that a system is truly chaotic is to 
measure its lifetime . 
Definition ; 

Let Zt+i = + c, where Zq = a + bi and c = p + qi for 
real numbers a, b, p, q and for i = V-1. For any c in 
this equation starting at some initial Zq, the number 
of iterations, n, required for z^+i to explode to 
infinity is defined as the lifetime of c at Zq. 

For any input, (z©, c) , equation (1) will produce a series of 

output points, Zt, such that -1 s Zt ^ 1^ until the last 10 

iterations, (n-10) , when the output abruptly diverges. 

The mathematical system described herein is extremely 

sensitive to initial conditions. For instance, two initial 

inputs that differ by a magnitude of .0000000001 are just as 

likely to yield widely different outputs as two inputs that 

differ by .01, for a certain number of iterations. Conversely, 

it is just as probable for two initial inputs differing by .01 

to yield similar outputs, while two that differ by .0000000001 

will diverge widely after a certain number of iterations. 

Therefore, knowing that a given initial input, (z^, c) , in 

equation (1) diverges to infinity after n iterations and that 

each Zt is unique, equation (1) is chaotic and yields n unique 

numbers which can be used as a key generator for the binary 

encryption system of then present invention. 

■ The general form for a cryptosystem can be written x = <<K, 

M, C, T>>, where K is the keys space, M is the message space, C 

is the encrypted message space (ciphertext) , and T is the 
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transformation function, T(k,m) , such that each restriction 
tk (m) : M C defined by T{k,m) has an inverse t^"^ : C ^ M. The 
message space consists of the alphabet, {0,l}, i.e., the 
messages are binary bit-strings. 

For a cryptosystem to be successful, the key space must, in 
addition to the requirements mentioned above, have cardinality 
large enough for an exhaustive key search to be computationally 
infeasible. These requirements are met by a unique application 
of equation (1) as a random number generator, with the 
encryption being a bitwise exclusive-or operation between these 
keys and the message space. For the message space based on the 
binary alphabet {0,l}, the exclusive-or (XOR = e) operator is 
defined as : 

1®1=0, 1®0=1, Oel=l, and 0 © 0 = 0 . 

In an alternate and preferred embodiment, the encryption 
algorithm incorporates a bitwise XOR operation and at least one 
arithmetic operation between the key space and the message 
space . 

Accordingly, it is an objective of the present invention to 
produce random numbers, based on chaos theory, to generate keys 
for use in a cryptographic system. 

It is another objective of the present invention to provide 
a cryptographic system based on chaos theory that is sensitive 
to initial conditions and, prior to approaching infinity, 
produces an output of n unique numbers, for a given initial input. 

It is still a further objective of the present invention to 
provide a cryptographic system that utilizes a logic and at 
least one arithmetic operation between the message space and the 
key space . 

It is yet a further objective of the present invention to 
provide a cryptographic method that operates quickly and 
efficiently, in less time than either DES or RSA, and is just as 
secure . 

It is still a further objective of the present invention to 
provide a cryptographic system that can be written in any 
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computer language and operates on any computer, microprocessor, 
processor chip, or any other electrical device. 

In accordance with these and other objects which will 
become apparent hereinafter, the instant invention will now be 
described with particular reference to the accompanying 
drawings . 

BRIEF DESCRIPTION OF THE DRAWINGS 
Figure 1 is a flow diagram of the method and apparatus of 

the cryptographic system of present invention. 

Figures 2a-2c is a flow diagram of the method and apparatus 

of an alternate embodiment of the cryptographic system of the 

present invention . 

DESCRIPTION OF THE PREFERRED EMBODIMENTS 

Referring to Table I, the following equation: 
(1) Zt*l = + 

where z and c are elements of the set of complex numbers: 

{z,c) ^ C, such that Zo = a + b(-l)^ and c = q + p(-l)^ for 

-1 ^ (a,b,q,p) ^ 1, 
was iterated using various initial points, (Zq, c) , to identify 
points exhibiting long lifetimes. For any pair, (Zq, c) , so 
identified, the number of permutations for that pair, leaving c 
and the first two digits of z^ constant, was in the order of -10^^. 

Each number Zo consists of two parts z.x and z.y, where z.x 
s a, z.y s b, and each of which is limited in length by the 
software used to implement the invention, or 15 digits long in 
the examples described herein. Likewise, the number c consists 
of two parts a.x s q and a.y s p. Table I shows the four 
numbers a.x, a.y, z.x, and z.y, and the associated lifetimes 
before equation (1) exploded to infinity for that set of 
numbers. These four numbers, a.x, a.y, z.x, and z.y, represent 
the key, and the lifetime, n, represents the number of unique 
iterations, Zt's, generated by that key. The unique z^'s are 
used to generate the key space K. 

The cryptosystem of the present invention: 
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(2) X32 = <<K32/ M32. M'32. T32>>, where 

M32/ = {nij I = bobibj. . .b32} , and bi e {0,l}, 

is herein described. The message space and ciphertext space are 
each broken into 32-bit strings. The numbers generated from 
5 equation (1) are in the form of two 64-bit double floating point 
values. The 64-bit double floating point numbers are translated 
into four 32-bit integer numbers: f (z,.) = (kat, kbt, kCt, kdt) and 
then used in the transformation function. The transformation 
function is the exclusive-or (XOR) bitwise operator ( e ) and 

10 encrypts /decrypts 32-bit blocks of message into 32-bit blocks of 
ciphertext or visa- versa, per transformation. 

The key space is the set of all 32 -bit strings: T(k,m) = k 
® m = m' . Decryption is simply repeating the XOR operation with 
the cipher text and key stream: t,,"^ = k ® m' = m. The 

15 algorithm encrypts up to 16n bytes of message, where n is the 
lifetime of c at Zq, with a unique string for each 4 bytes of 
message. If the lifetime n is reached, the algorithm is 
reinitialized with a new set of numbers, as discussed below. 
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Table I; Selected Initializer Points 



5 


C (a.x) 


C (a.y) 


Z .X 


Z .V 


Lifetime 




-0 .699 


.256405026768929 


0.79 


0.05 


35845 




-0 .599 


.422159492989359 


-0.43 


0.29 


17854 




-0.5 


.601599099448910 


-0.13 


0.24 


42321 




-0 .499999 


.601599099448910 


-0.092 


0.851 


377147 


10 


-0 .499999 


.601599099448910 


-0. 86 


0.37 


195518 




-0 .499998 


.601599099448910 


-0.50 


0.04 


153769 




-0 .499998 


.6016 


-0.24 


0.24 


177323 




0 . 3 


.571054493919800 


0.11 


0.58 


13021 




-0 .25 


.636146097147997 


-0.91 


0.46 


64358 


15 


-0 .25 


.636146 


-0.26 


0.08 


61100 




-0.249998 


. 636146097147997 


-0 . 25 


0.28 


95014 




-0.10 


.878039800605091 


0.01 


0.07 


15478 



Using an IBM compatable personal computer, with an Intel 
20 80486 DX2 50 Mhz microprocessor, an example of a software 
implementation of the above 32N-bit cryptosystem was written in 
a C- language computer program. The following description of the 
present invention utilizes the C-language implementation of the 
present invention, called KCRYPT, as an example only to aid in 
25 understanding. By using KCRYPT as an example, the present 
invention is not intended to be limited to this particular 
computer program. 

Referring now to Fig. 1, upon starting the system 1, the 
read/write, or input /output , computer files 2 and the 
30 initialization numbers, or seeds (a, b, p, q) . 4 are entered, 
(via the keyboard in KCRYPT) . KCRYPT first performs a check of 
4 entered data to minimize errors. The same information must be 
entered twice before the system proceeds. 

The reinitialization increments 6, called incl and inc2 in 
35 the program KCRYPT, are arbitrarily set to some constant. If 
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the message space exceeds the maximum bytes allowed by the 
lifetime of the key used, the generator will be reseeded with 
new initializers, as determined from the preset increments, and 
the encryption process continues with additional unique values, 
(Zts) . The increment values can be made part of the key along 
with (a, b, p, q) / or coded directly into the program. In 
KCRYPT incl and inc2 were set in code to = .000000000000001. 

After opening the input/output files, 7, up to 2048 bytes 
of plaintext message is read into a buffer, called Idata in 
KCRYPT, that can store 512 long integers 8. (A long integer in 
this system is 32 bits long) A counter is set 9, and the 
chaotic generator, equation (1) : Zt^^ = z^^ + c, is iterated 10. 
The two floating point outputs of equation (1) are 64 bits long 
and are converted into four long integer values (k^^, kj, kg, k^) 
12. The conversion of the floats into integers is accomplished 
by using the first significant eight digits of the generator 
output, in decimal form, and multiplying this value times the 
maximum 4 byte integer value, or 2147483647. This process is 
repeated for the last seven significant digits of the generator 
output so that two long integer values are obtained for each of 
the two floating point values received from the generator. 

The long integers are then XORed with the plaintext message 
data stored in the buffer 14, (Idata) . The counter is 
incremented 16, and the process continues for the entire 512 
long integers 18 contained in the buffer Idata. 

After the entire buffer (Idata) of 512 long integers is 
XORed with the plaintext message, the entire 2048 bytes of 
ciphertext is written to the output file 20. If the end of the 
message is detected 22, the system closes the input/output files 
24 and stops 26. If the end of the message is not detected 22, 
another 2048 bytes of plaintext * message is read into the Idata 
buffer 8, and the process repeats until the end of the message 
file is reached. 

^' Decryption is performed in the same manner with the 

plaintext message replaced with ciphertext, with the result 
being plaintext instead of ciphertext. 
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In operation, if a computer file or other digital 
information were being sent from one point to another, and 
security was an issue, the file or information would be entered 
along with the chosen initialization numbers and the destination 
file or output port. The intended receiver would enter the same 
initialization numbers, the file to be decrypted, and the 
location for the decrypted information. 

From a cryptanalytical standpoint the above algorithm's 
only weakness would be against a brute force attack on the 
ciphertext itself. A brute force attack on the key would be 
against 2"^ combinations, an attack on the ciphertext itself 
would only involve 2^^ combinations for each four bytes. In 
fact, an inherent weakness exists in all current private-key 
encryption schemes utilizing logical bit-wise operations, such 
as the XOR operation. Assuming the cryptanalyst was in 
possession of the algorithm, a sample of message text, and a 
sample of the related ciphertext, the actual encryption bit- 
stream could be obtained by simply XOR' ing the message and 
cipher texts: m' © m k^, kj, k^ . Any subsequent message 

using the same key would be compromised- Multiple encryptions, 
using either the algorithm previously described or any algorithm 
presently available that utilize bit-wise logical operations for 
digital encryption, including the work of Bianco and Proto 
discussed above, does not increase the security of the cipher. 
Consecutive XOR operations do not increase the key bit -length or 
the complexity of the encryption, regardless of whether one is 
using unique numeric values from a pseudo- random number 
generator or any other source of key bit -stream. 

The weakness of the above algorithms, which utilize bit- 
wise logical operations for encryption/decryption, led to an 
alternate embodiment of the present invention. 

The alternate, and preferred, embodiment of the present 
invention is extremely secure and involves the addition of an 
arithmetic operation in the cryptographic algorithm used above. 

The preferred embodiment of the cryptographic system of the 
present invention: 
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(3) <<K(64+D)/ ^32/ ^'64/ T^g4+D)>> 

is herein described. The quantity D is defined as: 2log2(10'*), 
where d ^ 15, 15 being the number of significant digits in each 
initializer key. The algorithm utilizes equation (1) as 
described herein above, and where: 

Zt = Ao + Boi 
Zt+i = Zt^ + c = At + B^i 
T{f(k), m32) = tk(m32) = m^^ = m' , where 
f(k) = (k,i, kt2, kta) 
tk(m) : At -» (kti, ktz) and B^ ^ (k^^, k^,) 
^32 * kti = ni64 
m64 -* (lit/ Rfc) 
kt2 ® Lt = Ii't 

(L\, R\) m'64 = m' . 
The key K^^ is then used to convert the next 32 -bit string of 
message into a 64 -bit string, which is split into two 32 -bit 
parts, Lt*i and Rt+i, with each part being XORed with kjt+i)2 
k(t*j,3 respectively, and so on. 

Decryption is the reverse of the operation above: 
T(f(k), m' ) = t^.i = m, where 

kt2 ® t ~ 
k^j ® R ' ^ — R^ 
(L^, Rt) m64 

The message space consists of the set of all 3 2 -bit binary 
strings as in the previous algorithm. However, the ciphertext 
space is the set of all 64 -bit binary strings. Unlike the 
previous algorithm, a direct attack in this case will not yield 
the original message because there is not a one-to-one bit 
correspondence between the message and ciphertext . The 
encrypted message consists of two bytes for every one byte of 
tmessage text. A brute force attack on the ciphertext must 
proceed against 64 -bit blocks in combination with every possible 
d-digit integer number, or against every possible combination of 
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Kxi ^t2f and kt3. in order to yield 4 bytes of message text. As 
and k^a are 32 bit long integers, and k^i is a double floating 
point value up to 15 digits (d s 15) , a cryptanalyst in 
possession of the algorithm, a sample of plaintext message, and 
related ciphertext would be dealing with an effective key bit 
length of : 

logaC (2^2) (2") (10*^) ) = 64 + D, where D = 2log2(10**), 
for every 4 bytes of message text . 

The cryptosystem defined by equation (2) and described 
above, utilizes a logical bit -wise XOR operation for each 
encryption/decryption. The cryptosystem defined by equation (3) 
utilizes one arithmetic operation, in addition to the XOR 
operator, per encryption/decryption. If r is defined as the 
number of arithmetic operations per encryption/decryption, it 
can be seen that both equations (2) and (3) are special cases, 
where r = 0 and r = 1 respectively, of the generalized 
cryptosystem : 

(4) <<K(32N+D) ' ^32' I^'32N' '^(32N+D)>> 

where N = 2"^ and D = 2rlog2{10**) for d s 15 . 

(The number of arithmetic operations per encryption/decryption 

is equivalent to the number of passes through the algorithm, or 

repetitions, i.e., multiple encryptions). 

The key bit -length of the generalized cryptographic system 

of equation (4) is limited only by the significant digits of the 

initializer values. Beyond r = 2 (or N = 4, 32N = 128, D « 90), 

there is no increase in the security of the system for multiple 

encryptions. If d is the maximum number of digits for each 

initializer, then the maximum key-bit length is given by the 

number of possible combinations of four, 15-digit numbers (each 

of which can be a positive or negative number) : 

(5) log2(2* X 10***) = 4 + 41og2{10**), 

where, 2* x 10*^ = possible combinations of initializers, 

, (For four d-digit numbers: 

■ (a.x) (a.y) (z.x) (z.y) 

(2 X 10**) X (2 X 10**) X (2 X 10**) X (2 x 10**) = 2* x 10*^) . 
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We know that D = 2rlog2{10^) and 32N = 2^""*^^ so that for r 
> 2 the terms of equation (5) are exceeded. Therefore, at the 
present time the algorithm is limited to a maximum of two 
arithmetic operations per encryption/decryption. For the 
instant case, the possible combinations of four 15 -digit 
floating point numbers is 2^ x 10^° so that d = 15 and the 
maximum effective key bit-length computed from (5) .is 196. 

An example of a software implementation of the preferred 
embodiment of the cryptosystem of the present invention, as 
defined by equation (3), and equation (4) with r = 1, was 
written in a C- language computer program called KCRYPT2 • The 
discussion herein above with regards to limiting the present 
invention to a single C-language computer program 
implementation, KCRYPT, is herein reiterated for the preferred 
embodiment of the present invention, and computer program 
KCRYPT2 . 

Referring now to Figs. 2a- 2c, upon system start up 30, the 
input/output file names 32, the initializer values (a, b, p, q) 
34, and mode ( encrypt /decrypt ) 38 are entered, (via keyboard in 
KCRYPT2) . For the encryption mode 38, the plaintext message is 
read from the input file, (function encrypt ( ) in program 
KCRYPT2) , and put into a long (3 2 -bit) integer buffer, called 
linstr in KCRYPT2, of the length of the file up to 1024 bytes 
40. A counter is set 42, and the chaotic generator, equation 
(1) : Zt^i = + c, is iterated 44. The arithmetic operands (k^, 
kz, kj, k4) are obtained from equation (1) 46. 

Each long integer in buffer linstr is then converted to a 
floating point number (64 bits) 48 and then multiplied by a 6 
digit number 50 obtained by using the first 6 digits of each 
output, Zt, of equation (1) 46. The accuracy of the floating 
point data type is limited to 15 significant digits, by using 
the first 6 digits of each ensures that the result of the 
multiplication does not exceed this significant limit, 
i The counter is then iterated 52 and this process continues 
until 256 long integers in the input buffer are multiplied by 
the key values 54 . 
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The result of each multiplication is then written to an 
output file as a 64-bit floating point value 56. If the end of 
the message (end of file) is not detected 58, another 1024 bytes 
is read into the input buffer linstr 40, and the process 
repeats. If an end of message is detected 58, the files are 
closed 60, and the output file containing the 64 bit floating 
point values is read into a long integer buffer (called inlng in 
KCRyPT2) 62, of the length of the data file up to 2048 bytes. 
The effectively separates each 64 bit floating point value into 
two 32 bit halves. This is accomplished by function XOR() in 
KCRYPT2 . 

As above, a counter is set 64, and the chaotic generator, 
equation (1): 2t,+i = + c, is iterated 66. The XOR operands 
(ki, kz, kj, k4) are now obtained from equation (1) 68. 

The XOR operands (k^s) are obtained by multiplying the last 
9 digits of each z^. times the value of the maximum long integer 
value type 68. The result is XORed with each 32-bit long 
integer in the 2048 buffer, inlng, 70. The counter is 
incremented 72, and the process continues until all 512 long 
integers in the buffer (inlng) have been XORed with the XOR 
keys . 

The result is written back into the output file, which is 
now ciphertext of 64 bit floating point length words 76. If an 
end of file is detected 78 the files are closed 80, and for 
encryption 82 the system stops 84. If an end of file is not 
detected 78, the next 2048 bytes are read into the input buffer 
inlng 62, and the process continues. 

In the decryption mode 38, the process is reversed. First, 
data (ciphertext) is read from the output file (which is the 
input file for decryption) (this is accomplished by function 
XORO in KCRYPT2) into a long integer buffer (inlng) of the 
length of the file up to 2048 bytes 62. The operation described 
above for encryption is then performed on each 3 2 -bit value, and 
the result is written back to the output file (input file) . 
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Data is then read from the output file (input) (by the 
function decrypt 0 in KCRYPT2) into a double floating point 
buffer 86, called instr in KCRYPT2. 

As in encryption, a counter is set 88, and the chaotic 
generator, equation (1): z^i = z,,^ + c, is iterated 90. The 
arithmetic operands (kj, kj, k4) are obtained from equation 

(1) 92. But instead of multiplying for encryption 50, each 64- 
bit value is divided by the 6 digit number obtained from the Zt 
output of equation (1) 94. The counter is then incremented 96, 
and the process continues for each of 256 values in the floating 
point buffer, instr 98. 

The result, 1024 bytes, is written as 32 -bit long integers 
to the input file, (the output file for decryption) , 100, which 
is now the plaintext message. If an end of file is not detected 
102, another 2048 bytes is read from the output file (input file 
for decryption) to buffer instr 86, and the process repeats. If 
an end of file is detected 102, the files are closed 104, and 
the system stops 106. 

With a slight modification of the algorithm, any multiple 
of 196 bit keys can be input and used with the algorithm to 
increase the security of the system. Key bit lengths are 
possible of 392 bits, 588 bits, 784 bits, 980 bits, 1176 bits, 
1372 bits, 1568 bits, 1764 bits, 1960 bits, 2156 bits, 2352 
bits, and so on limited only by available memory. These key 
sets would in turn be used in series as inputs to equation (1) 
above. The output would then be used to encrypt /decrypt the 
data, and be stored in memory for use as the next input of 
equation (1) . The increase of key bit length, and hence 
security, by using multiple sets of keys, does not noticeably 
slow down the algorithm. The time required to encrypt a one 
megabyte file (1,024,000 bytes), using a 2352 bit key, was 
benchmarked at 5.376228 seconds per megabyte, using a 80486 DX2 
50 Mhz microprocessor. 
i Alternately, some or all of the initializer values (a, b, 

p, q) can be hard- coded on an Erasable Programmable Read Only 
Memory (EPROM) chip and incorporated into a "smart card" for 
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portability, or encoded on a magnetic tape strip, bar code, or 
similar device known in the art. The cardholder could then 
obtain access to encrypted information by using the card in 
combination with manual input for any remaining initializer 
5 values for the particular set of initializers used to encrypt 
the information. 

In another embodiment, the initializer values and the 
KCRYPT2 program could both be encoded in a microprocessor chip 
to provide for instant encryption/decryption of digital 

10 telecommunications. 

The instant invention has been shown and described herein 
in what is considered to be the most practical and preferred 
embodiment. It is recognized, however, that departures may be 
made therefrom within the scope of the invention and that 

15 obvious modifications will occur to a person skilled in the art. 
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CLAIMS 

What Is Claimed Is: 

1. A method of encryption comprising the steps of; 

a) selecting four initializer values which are used to 
generate n chaotic iterates from a chaotic equation, where n is 
the lifetime of the chaotic equation; 

b) generating two chaotic iterates from said chaotic 

equation; 

c) converting the two chaotic iterates into a 
predetermined number of chaotic keys; 

d) encrypting a block of plaintext message as a block 
of ciphertext based on one of said chaotic keys; 

e) repeating step d) until a predetermined number of 
blocks of plaintext message have been encrypted with one each of 
said chaotic keys; 

f) repeating steps b) through e) until the entire 
plaintext message is encrypted as ciphertext. 

2. The method of claim 1 wherein said predetermined 
number of chaotic keys in step c) is four and said predetermined 

20 number of blocks of plaintext message in step e) is four. 

3. The method of claim 1 wherein said chaotic equation 

is; 

Zt+i = + c, where z and c are complex numbers. 

4 . The method of claim 1 wherein each chaotic iterate is 
25 of length 2L, each chaotic key is of length L, each block of 
plaintext message is of length L, and each block of ciphertext 
is of length L. 



10 



5. The method of claim 4 wherein L = 32 bits. 
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6. The method of claim 1 wherein the step of encrypting 
the plaintext message comprises combining each plaintext message 
block and each chaotic key by an exclusive-or operation. 

7. The method of claim 1 further comprising the step of 
decrypting the ciphertext to the plaintext message based on the 
chaotic keys. 

8. The method of claim 7 wherein the step of decrypting 
the ciphertext comprises combining the ciphertext blocks and 
said chaotic keys by an exclusive-or operation. 

9. The method of claim 1 wherein, when the number of said 
chaotic iterates used to encrypt said message approaches n, two 
of said four initializer values are incremented at step a) . 

10. A method of encryption comprising the steps of; 

a) selecting four initializer values which are used to 
generate n chaotic iterates from a chaotic equation, where n is 
the lifetime of the chaotic equation; 

b) generating two chaotic iterates, each of length L, 
from said chaotic equation; 

c) converting the two chaotic iterates into four 
chaotic keys of length L; 

d) separating each of said four chaotic keys into a 
first portion and a second portion; 

e) converting four blocks of plaintext message to four 
blocks of length 2L by multiplying each said block of length L 
of plaintext message by one of said first portions of each of 
said four chaotic keys; 

f ) separating each block of said multiplied plaintext 
message of length 2L into two blocks of length L; 

g) encrypting four blocks of said multiplied plaintext 
message of length L as ciphertext based on said second portion 
of each of said four chaotic keys; 

h) combining the ciphertext into blocks of length 2L; 
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i) repeating steps b) through h) until the entire 
plaintext message is encrypted as ciphertext. 

11. The method of claim 10 wherein said chaotic equation 

is; 

Zt+i = + c , where z and c are complex numbers . 

12. The method of claim 10 wherein L = 32 bits. 

13. A method of encryption comprising the steps of; 

a) selecting four initializer values which are used to 
generate n chaotic iterates from a chaotic equation, where n is 
the lifetime of the chaotic equation; 

b) generating two chaotic iterates from said chaotic 

equation; 

c) converting the two chaotic iterates into four 
chaotic keys; 

d) separating each of said chaotic keys into a first 
portion and a second portion; 

e) converting four blocks of plaintext message into 
four blocks of multiplied plaintext message by multiplying each 
said block of plaintext message by said first portion of a 
specific chaotic key; 

f ) repeat steps b) through e) which generate four new 
chaotic keys which are different than all previously generated 
chaotic keys, each said new chaotic key first portion is 
multiplied with one of said four blocks of plaintext message, 
said plaintext message being separate from all plaintext 
messages previously converted, and continue step f ) until all of 
said plaintext message is converted to multiplied plaintext; 

g) separating each block of said multiplied plaintext 
message into two blocks; 

h) encrypting each separated block of said multiplied 
plaintext message with said second portion of a predetermined 
chaotic key to produce a block of ciphertext; 
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i) combining consecutive blocks of ciphertext to 
produce an encrypted message; 

j) repeating steps h) and i) until all blocks of 
ciphertext have been converted into encrypted messages. 

14 . The method of claim 13 wherein the step h) includes 
repeating the steps of b) through d) to regenerate the chaotic 
keys which are separated to produce the second portion used for 
said encrypting. 

15. The method of claim 13 wherein each chaotic iterate is 
of length 2Ij, each chaotic key is of length each block of 
plaintext message is of length L, each block of multiplied 
plaintext message is of length 2L, each block of separated 
plaintext message is of length L, and each block of ciphertext 
is of length 2L. 

16 . The method of claim 13 wherein said chaotic equation 

is; 

Zc^i = + c, where z and c are complex numbers. 

17. The method of claim 15 wherein L = 32 bits. 

18. The method of claim 13 wherein the step of encrypting 
the multiplied plaintext message comprises combining each 
multiplied plaintext message block and each said second portion 
of each said chaotic key by an exclusive -or operation. 

19. The method of claim 13 further comprising the step of 
decrypting the encrypted message to the plaintext message based 
on the chaotic keys . 

20. The method of claim 15 further including the step of 
decrypting the encrypted message which comprises the steps of; 

separating each ciphertext block of length 2L into two 
blocks of length L; 
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combining said ciphertext blocks of length L and said 
second portion of said chaotic keys of length L by an exclusive- 
or operation; 

assembling the combined ciphertext and chaotic keys 
into blocks of length 2L; 

dividing each block of length 2L by said first portion 
of one of said four chaotic keys to arrive at the plaintext 
message of length L; 

repeating these steps until the entire ciphertext is 
decrypted to plaintext. 

21. The method of claim 13 wherein, when the number of 
said chaotic iterates used to encrypt said message approaches n, 
two of said four initializer values are incremented at step a) . 

22. A method of encryption comprising the steps of; 

a) selecting four initializer values which are used to 
generate n chaotic iterates from a chaotic equation, where n is 
the lifetime of the chaotic equation; 

b) generating chaotic iterates, each of length 2Li, 
from said chaotic equation; 

c) converting each chaotic iterate of length 2Ij into 
two chaotic keys of length L; 

d) encrypting blocks of length L of plaintext message 
as ciphertext based on said chaotic keys; and 

e) repeating steps b) through d) until the entire 
plaintext message is encrypted as ciphertext. 

23. The method of claim 22 wherein said chaotic equation 

is; 

Zt+i = + c, where z and c are complex numbers. 

24 . The method of claim 22 wherein said step b) generates 
ftwo chaotic iterates, and step c) four chaotic keys. 

25. The method of claim 22 wherein L = 32 bits. 
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26. The method of claim 22 wherein the step of encrypting 
the plaintext message comprises combining each plaintext message 
block of length L and one each of said four chaotic keys by an 
exclusive-or operation. 

27. The method of claim 22 further comprising the step of 
decrypting the ciphertext back to plaintext based on the chaotic 
keys . 

28. The method of claim 27 further comprising the step of 
decrypting the ciphertext comprising combining each ciphertext 
block of length L and one each of said four chaotic keys by an 
exclusive-or operation, 

29. The method of claim 22 wherein step d) encrypts blocks 
of plaintext message of length L into ciphertext blocks of 
length 2Ij. 

30. The method of claim 29 wherein the step of encrypting 
comprises ; 

1) separating each of said four chaotic keys into a 
first portion and a second portion; 

2) converting four blocks of length L of plaintext 
message to four blocks of length 2L by multiplying each said 
block of length L of plaintext message by one of said first 
portions of each of said four chaotic keys; 

3) separating each block of length 2L into two blocks 
of length L; 

4) encrypting four blocks of length L as ciphertext 
based on said second portion of each of said four chaotic keys, 
by combining each plaintext message block and each said second 
portion of each said four chaotic keys by an exclusive-or 

^ operation; 

5) combining the ciphertext into blocks of length 2Ij. 
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31. The method of claim 30 including the steps of 
decrypting the ciphertext comprising; 

separating each ciphertext block of length 2L into two 

blocks of length L; 

combining said ciphertext blocks of length L and said 

chaotic keys of length L by an exclusive -or operations- 
assembling the combined ciphertext and chaotic keys 

into blocks of length 2L; 

dividing each block of length 2L by said first portion 

of one of said four chaotic keys to arrive at the plaintext 

message . 

32. A system for encryption comprising; 

means for selecting four initializer values which are 
used to generate n chaotic iterates from a chaotic equation, 
where n is the lifetime of the chaotic equation; 

means for generating at least one chaotic iterate from 
said chaotic equation; 

means for converting each of said at least one chaotic 
iterates into two chaotic keys; 

means for encrypting at least one block of plaintext 
message as at least one block of ciphertext based on said 
chaotic keys. 

33. The system of claim 32 wherein said at least one 
chaotic iterate is of length 2L, said chaotic keys are of length 
L, said at least one block of plaintext message is of length L, 
and said at least one block of ciphertext is of length L. 

34. The system of claim 32 wherein said chaotic equation 

is; 

Zt+i = z,.^ + c, where z and c are complex numbers. 

I 35. The system of claim 32 wherein two chaotic iterates 

and four chaotic keys are generated. 
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36. The system of claim 33 wherein L = 32 bits. 

37. The system of claim 32 wherein means for encrypting 
combines at least one of said blocks of plaintext message and at 
least one of said chaotic keys by an exclusive-or operation. 

38. The system of claim 32 including means for decrypting 
said at least one block of ciphertext back to at least one block 
of plaintext based on said chaotic keys. 

39. The system of claim 38 wherein means for decrypting 
the ciphertext combines each said at least one block of 
ciphertext and at least one of said chaotic keys by an 
exclusive-or operation. 

40. The system of claim 3 5 wherein each of said plaintext 
message blocks is of length L and is encrypted as a ciphertext 
block of length 2L. 

41. The system of claim 40 wherein said means for 
encrypting comprises; 

means for separating each of said four chaotic keys 
into a first portion and a second portion; 

means for converting four blocks of length L of 
plaintext message into four blocks of length 2Ij, said means 
comprising multiplying each said block of length L of plaintext 
message by one of said first portions of each of said four 
chaotic keys; 

means for separating each block of length 2L into two 
blocks of length L; 

means for encrypting four blocks of length L as 
ciphertext based on said second portion of each of said four 
, chaotic keys, wherein each plaintext message block and each 
chaotic key is combined by an exclusive-or operation; and 

means for combining the ciphertext into blocks of 

length 2Li. 
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42. The system of claim 40 including means for decrypting 

the ciphertext comprising; 

means for separating each ciphertext block of length 

2Ij into two blocks of length L; 

means for combining said ciphertext blocks of length 

Ii and said chaotic keys by an exclusive-or operations- 
means for assembling the combined ciphertext and 

chaotic keys into blocks of length 2L; and 

means for dividing each block of length 2L by said 

first portion of one of said four chaotic keys to arrive at the 

plaintext message. 
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